Home Specialist skills Security SEC699: Purple Team Tactics – Adversary Emulation for Breach Prevention and Detection

SEC699: Purple Team Tactics – Adversary Emulation for Breach Prevention and Detection

  • bullet point
    Learn how to build realistic adversary emulation plans to better protect your organisation
  • bullet point
    Deliver advanced attacks, including application whitelisting bypasses, cross-forest attacks (abusing delegation) and stealth persistence strategies
  • bullet point
    Building SIGMA rules to detect advanced adversary techniques

Overview

Off the shelf (OTS)

This course provides advanced purple team training, with a focus on adversary emulation for data breach prevention and detection. Throughout this course, students will learn how real-life threat actors can be emulated in a realistic enterprise environment, including multiple AD forests. In true purple fashion, the goal of the course is to educate students on how adversarial techniques can be emulated (manual and automated) and detected (use cases/rules and anomaly-based detection).

Delivery method
Face to face icon

Face to face

Virtual icon

Virtual

Digital icon

Digital

Course duration
Duration icon

48 hours

Competency level
Expert icon

Expert

Pink building representing strand 4 of the campus map
Delivery method
  • face to face icon

    Face to face

  • Virtual icon

    Virtual

  • Digital icon

    Digital

Course duration
Duration icon

48 hours

Competency level
  • Expert icon

    Expert

Make a booking

Contact us

chatbotSpark login – Alpha testing